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DETAILED ACTION 

1 . The Amendment, and remarks therein, received on 6/02/2005 have been 
entered and carefully considered. 

2. The Amendment introduces a new limitation into the originally sole 
independent claims 24. The newly introduced limitation has required a new 
search and consideration of the pending claims. The new search has 
resulted in newly discovered prior art. New grounds of rejection based on the 
newly discovered prior art follow below. 

3. The text of those sections of Title 35, U.S. Code not included in this action 
can be found in a prior office action. 

Response to Amendment 

4. Applicant's arguments have been carefully considered but they were not 
found persuasive. 

5. Applicant argues that Isikoff fails to teach or suggest a locator subsystem, a 
feature of each of independent claims 1 and 15 and claims 2-14 and 16-23 
depend from and further define these claims. 

6. The examiner does not find the argument persuasive and points to Isikoff's, 
col. 10 lines 26-31 , wherein Isikoff's teach a GPS receiver. 

7. The arguments regarding the amended claims 24-26 are addressed within 
this Office Action. 

8. Claims 1-26 have been examined. 

Rejections - 35 USC § 102 
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(b) the invention was patented or described in a printed publication in this or a foreign country or in 
public use or on sale in this country, more than one year prior to the date of application for patent in 
the United States. 

9. Claims 1-2, 4-6 and 15, 20-22 are rejected under 35 U.S.C. 102(b) as being 
anticipated by lsikoff(U.S. Patent No. 5748084). 

10. As per claim 1 Isikoff teaches a host chipset (see Fig. 4), a beacon equipped 
laptop computer configured for operating within a terrestrial cellular network 
(Fig. 1 and col. 3 lines 5-7), and a GPS receiver that transmits its position 
coordinates in order to aid the tracking process. This read on a host chipset 
and a locator subsystem connected to the host chipset and arranged to 
determine a current location of the mobile system. Laptops inherently have 
main storage connected to the host chipset and arranged to store an 
operating system (OS) and contain an OS-Present application and/or a Pre- 
OS application configured to enforce security policies during user 
authentication. Isikoff teaches enforcing security policies during user 
authentication, accessing the locator subsystem and determining whether the 
mobile system may have been stolen or used inappropriately based on the 
security policies (col. 5 lines 6-11). 

1 1 . As per claim 2, laptops inherently have main memory to store OS, and the 
OS-Present application and flash memory to store Pre-OS application are 
executed during boot up. Isikoff shows main memory in Fig. 4 and teaches 
BIOS (col. 6 lines 26-27). 

12. As per claim 5, a hard drive (Fig. 4) is a non-volatile readable and writeable 
memory device. 
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13. Claim 15 is substantially equivalent to claims 1-2; therefore claim 15 is 
similarly rejected. 

14. As per claim 20-22, Isikoff teaches the mobile device using a GPS receiver 
and the transmitter transmitting its position coordinates (Isikoff, col. 10 lines 
20-29). Also, Isikoff teaches reporting a violation to an OS readable location 
in the protected storage and/or an external event monitoring facility (col. 5 
lines 8-33, col. 3 lines 30-35, col. 4 lines 14-16). The Isikoff's beacon 
equipped laptop configured for operating within a terrestrial cellular network, 
represented by relay station 1 10 as shown in Fig. 1 (col. 3 lines 5-7) reads on 
the RF-based locator providing location based information is via a radio 
tower, for enabling the police to track and recover the stolen device. 

15. Claim 24 is rejected under 35 U.S.C. 102(b) as being anticipated by Cromer 
et al. (U. S. Patent No. 6166688). 

16. Cromer et al. teach a laptop (Fig. 1) depicting the power-on-self-test (POST) 
accessing EEPROM to determine if new (location) coordinates have been 
stored in EEPROM, which reads on processor performing initializing and 
testing a system platform (Cromer et al. col. 6 lines 28-35). If new coordinates 
are found a password is used to validate the new coordinates (col. 6 lines 35- 
55). After the verification of the coordinates the determination is made of the 
current geographical location which is compared with the authorized 
geographical area (col. 7 lines 9-17). This reads on "checking a Pre-OS 
security policy record for an approved trigger mechanism, determining if there 
is a violation of security policies during user authentication. If a determination 
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is made that a portable computer is outside the authorized area the laptop is 
disabled utilizing a power control signal (col. 7 lines 23-28). This reads on "if 
there is a violation of the security policies, making a decision that the mobile 
system may have been stolen or used inappropriately". 

Claim Rejections - 35 USC § 103 
The following is a quotation of 35 U.S.C. 103(a) which forms the basis for 
all obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described 
as set forth in section 1 02 of this title, if the differences between the subject matter sought to 
be patented and the prior art are such that the subject matter as a whole would have been 
obvious at the time the invention was made to a person having ordinary skill in the art to which 
said subject matter pertains. Patentability shall not be negatived by the manner in which the 
invention was made. 

17. Claim 3 is rejected under 35 U.S.C. 103(a) as being unpatentable over Isikoff 

v.- 

(U. S. Patent No. 5748084) in view of Official Notice. 
As per claim 3 Official Notice is taken that it is old and well-known to 
configure a laptop's protected storage to support the Pre-OS application and 
the OS-Present application and to store configuration data, the security 
policies, authentication data and other information obtained from the Pre-OS 
application and the OS-Present application. 

It would have been obvious to one of ordinary skill in the art at the time of 
applicant's invention to configure a laptop's protected storage to support the 
Pre-OS application and the OS-Present application and to store configuration 
data, the security policies, authentication data and other information obtained 
from the Pre-OS application and the OS-Present application. One of ordinary 
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skill in the art would have been motivated to perform such a modification in 
order to assure laptop's security and integrity. 
18. Claims 23 is rejected under 35 U.S.C. 103(a) as being unpatentable over 
Isikoff (U.S. Patent No. 5748084) in view of Bajikar (U.S. Pub. 20020194500). 
Isikoff teaches the mobile system as discussed above. 
Isikoff does not teach the RF-based locator subsystem corresponding to a 
Bluetooth TM transceiver that is part of a Bluetooth TM based security system 
including a central security server and a network of Bluetooth (voice/data) 
Access Points (BTAPs) installed in a designated area to provide security 
services for the mobile system, including asset control, remote monitoring and 
tracking of the mobile system, through the Internet or the RF-based wireless 
network. 

Bajikar teaches a Bluetooth based security system utilized to provide ad-hoc 
security services to secured assets comprising a secured device (SD) 
equipped with Bluetooth (BT) technology; a plurality of Bluetooth Access 
Points (BTAPs) located at designated points to establish a BT link with the 
secured device (SD); and a security server (SS) connected to all BTAPs and 
arranged to provide access control and security services for the secured 
device (SD), wherein the security server (SS) obtains attribute information 
(Abstract and Fig. 1). Furthermore Bajikar discloses that the Bluetooth TM 
based security system serves to control and monitor the status of all secured 
devices or assets remotely, through the Internet or other networks [0024]. 



Application/Control Number: 09/892,667 Page 7 

Art Unit: 2134 

The Bajikar's teaching reads on RF-based locator subsystem corresponding 
to a Bluetooth TM transceiver that is part of a Bluetooth TM based security 
system including a central security server and a network of Bluetooth 
(voice/data) Access Points (BTAPs) installed in a designated area to provide 
security services for the mobile system, including asset control, remote 
monitoring and tracking of the mobile system, through the Internet or the RF- 
based wireless network. 

It would have been obvious to one of ordinary skill in the art at the time of 
applicant's invention to utilize an RF-based locator subsystem subsystem 
corresponding to a Bluetooth TM transceiver that is part of a Bluetooth TM 
based security system including a central security server and a network of 
Bluetooth (voice/data) Access Points (BTAPs) installed in a designated area 
to provide security services for the mobile system, including asset control, 
remote monitoring and tracking of the mobile system, through the Internet or 
the RF-based wireless network as taught by Bajikar. One of ordinary skill in 
the art would have been motivated to perform such a modification in order to 
provide low-cost and low-power ad-hoc security [Bajikar 0021]. 
19. Claims 7, 11-13 and 16 are rejected under 35 U.S.C. 103(a) as being 

unpatentable over Isikoff (U.S. Patent No. 5748084) in view of Hadfield et al. 
(Lee Hadfield, Dave Hater, Dave Bixler, "Windows NT Server 4 Security 
Handbook", 1997, ISBN: 078971213) and Patel et al. (U.S. Patent No. 
6438690). 
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Isikoff teaches a mobile system as discussed above using a GPS receiver 
and the transmitter transmitting its position coordinates (Isikoff, col. 10 lines 
20-29). 

Isikoff does not explicitly teach the security policies for the Pre-OS application 
and the OS-Present application including a designated number of failed log- 
on attempts, an unauthorized change attempted on selected platform policies, 
an unauthorized use of monitored services, a designated time expiration 
based on a renewable certificate, or a lack of communication to a policy 
server or to a security token, and an unauthorized deletion of the protected 
storage. 

Hadfield et al. teach administrative security policy, account policy, audit policy 
and rights policy (Hadfield et al. pg. 27-28) which read on number of failed 
log-on, unauthorized use of monitored services and an unauthorized change 
attempted on selected platform policies. 

Hadfiled et al. also teaches user rights permissions (Hadfield et al. pg. 107), 
which read on an unauthorized deletion of the protected storage. 
It would have been obvious to one of ordinary skill in the art at the time of 
applicant's invention to include a designated number of failed log-on attempts, 
an unauthorized change attempted on selected platform policies, an 
unauthorized use of monitored services, and an unauthorized deletion of the 
protected storage into security polices for the Pre-OS application and the OS- 
Present application as taught by Hadfield. One of ordinary skill in the art 
would have been motivated to perform such a modification in order to specify 
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how the users are allowed to interact with the system (Handfield, pg. 27, last 
§). 

Isikoff also does not teach the security policies for the Pre-OS application and 
the OS-Present application including designated time expiration based on a 
renewable certificate. 

Pate! et al. teach certificate configuration policy (Patel et al. col. 5 lines 38- 
46). It would have been obvious to one of ordinary skill in the art at the time 
of applicant's invention to include a designated time expiration based on a 
renewable certificate into security polices for the Pre-OS application and the 
OS-Present application as taught by Patel et al. One of ordinary skill in the art 
would have been motivated to perform such a modification in order to 
increase the level of security (Patel et al. col. 2 lines 4-12). 
20. Claims 8-10 and 17-19 are rejected under 35 U.S.C. 103(a) as being 

unpatentable over Isikoff (U.S. Patent No. 5748084) in view of Hadfield et al. 
(Lee Hadfield, Dave Hater, Dave Bixler, "Windows NT Server 4 Security 
Handbook", 1997, ISBN: 078971213) and Patel et al. (U.S. Patent No, 
6438690) and in further view of Rainbow Technologies (Rainbow 
Technologies, "Protecting Laptops with iKey and Intel Protected Access 
Architecture"). 

Isikoff teaches the mobile system as discussed above. 
Isikoff does not explicitly a system basic input/output start-up being 
configured in accordance with IPAA and being executed during boot up 
before the OS is loaded. 
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Rainbow Technologies teach a system basic input/output start-up being 
configured in accordance with IPAA and being executed during boot up 
before the OS is loaded (Rainbow Technologies, "How Does IPAA Work 
section, pg. 2). 

It would have been obvious to one of ordinary skill in the art at the time of 
. applicant's invention to implement a system basic input/output start-up being 
configured in accordance with IPAA and being executed during boot up 
before the OS is loaded as taught by Rainbow Technologies. One of ordinary 
skill in the art would have been motivated to perform such a modification in 
order to make a stolen laptop unusable (Rainbow Technologies, The Intel 
Protected Access Architecture section, pg. 2). 
Reporting any violation of the security policies would be implicit. 
21. Claim 14 is rejected under 35 U.S.C. 103(a) as being unpatentable over 
lsikoff(U.S. Patent No. 5748084) in IsikofffU.S. Patent No. 5748084) in view 
of Hadfield et at. (Lee Hadfield, Dave Hater, Dave Bixler, "Windows NT 
Server 4 Security Handbook", 1997, ISBN: 078971213) and Patel et al. (U.S. 
Patent No. 6438690) and in further view of Bajikar (U.S. Pub. 20020194500). 
Isikoff teaches the mobile system as discussed above. 
Isikoff does not teach the RF-based locator subsystem corresponding to a 
Bluetooth TM transceiver that is part of a Bluetooth TM based security system 
including a central security server and a network of Bluetooth (voice/data) 
Access Points (BTAPs) installed in a designated area to provide security 
services for the mobile system, including asset control, remote monitoring and 
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tracking of the mobile system, through the Internet or the RF-based wireless 
network. 

Bajikar teaches a Bluetooth based security system utilized to provide ad-hoc 
security services to secured assets comprising a secured device (SD) 
equipped with Bluetooth (BT) technology; a plurality of Bluetooth Access 
Points (BTAPs) located at designated points to establish a BT link with the 
secured device (SD); and a security server (SS) connected to all BTAPs and 
arranged to provide access control and security services for the secured 
device (SD), wherein the security server (SS) obtains attribute information 
(Abstract and Fig. 1). Furthermore Bajikar discloses that the Bluetooth TM 
based security system serves to control and monitor the status of all secured 
devices or assets remotely, through the Internet or other networks [0024]. 
The Bajikar's teaching reads on RF-based locator subsystem corresponding 
to a Bluetooth TM transceiver that is part of a Bluetooth TM based security 
system including a central security server and a network of Bluetooth 
(voice/data) Access Points (BTAPs) installed in a designated area to provide 
security services for the mobile system, including asset control, remote 
monitoring and tracking of the mobile system, through the Internet or the RF- 
based wireless network. 

It would have been obvious to one of ordinary skill in the art at the time of 
applicant's invention to utilize a RF-based locator subsystem subsystem 
corresponding to a Bluetooth TM transceiver that is part of a Bluetooth TM 
based security system including a central security server and a network of 
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Bluetooth (voice/data) Access Points (BTAPs) installed in a designated area 
to provide security services for the mobile system, including asset control, 
remote monitoring and tracking of the mobile system, through the Internet or 
the RF-based wireless network as taught by Bajikar. One of ordinary skill in 
the art would have been motivated to perform such a modification in order to 
provide low-cost and low-power ad-hoc security [Bajikar 0021]. 
22. Claim 25 is rejected under 35 U.S.C. 103(a) as being unpatentable over 
Cromer etal. (U.S. Patent No. 6166688) in view of Isikoff (U.S. Patent No. 
5748084). 

Cromer etal. teach the laptop with BIOS instructions as discussed above. 
Cromer et al. do not explicitly teach the system BIOS instructions to further 
cause the processor to report the location-based information indicating the 
current location of the mobile system to a proper authority, via an Internet or a 
RF-based wireless network, when there is a violation of the security policies. 
Isikoff teaches reporting the location-based information indicating the current 
location of the mobile system to a proper authority, via an Internet or a RF- 
based wireless network, when there is a violation of the security policies 
(Isikoff col 2 lines 7-20). 

It would have been obvious to one of ordinary skill in the art at the time of 
applicant's invention to configure system BIOS instructions further cause the 
processor to report the location based information indicating the current 
location of the mobile system to a proper authority, via an Internet or a RF- 
based wireless network, when there is a violation of the security policies. 
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Isikoff teach reporting the location-based information indicating the current 
location of the mobile system to a proper authority, via an Internet or a RF- 
based wireless network, when there is a violation of the security policies as 
taugh by Isikoff. One of ordinary skill in the art would have been motivated to 
perform such a modification in order to recover a stolen laptop and capture of 
the thief (Isikoff col. 2 lines 60-66). 
23. Claim 26 is rejected under 35 U.S.C. 103(a) as being unpatentable over 
Cromer et al. (U.S. Patent No. 6166688) in view of Hadfield et al. (Lee 
Hadfield, Dave Hater, Dave Bixler, "Windows NT Server 4 Security 
Handbook", 1997, ISBN: 078971213) and Patel et al. (U.S. Patent No. 
6438690). 

Cromer etal. laptop computer with BIOS instructions as discussed above. 
Cromer et al. do not explicitly teach the security policies for the system BIOS 
instructions include a designated number of failed log-on attempts, an 
unauthorized change attempted on selected platform policies, an 
unauthorized use of monitored services, and an unauthorized deletion of a 
protected storage. 

Hadfield et al. teach administrative security policy, account policy, audit policy 
and rights policy (Hadfield et al. pg. 27-28) which read on number of failed 
log-on, unauthorized use of monitored services and an unauthorized change 
attempted on selected platform policies. Hadfield et al. also teaches user 
rights permissions (Hadfield et al. pg. 107), which read on an unauthorized 
deletion of the protected storage. 
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It would have been obvious to one of ordinary skill in the art at the time of 
applicant's invention to include a designated number of failed log-on attempts, 
an unauthorized change attempted on selected platform policies, an 
unauthorized use of monitored services, and an unauthorized deletion of the 
protected storage into the security policies for the system BIOS instructions 
as taught by Hadfield et al. One of ordinary skill in the art would have been 
motivated to perform such a modification in order to specify how the users are 
allowed to interact with the system (Hadfield, pg. 27, last §). 
Cromer et al. also do not teach the security policies for the Pre-OS application 
and the OS-Present application including a designated time expiration based 
on a renewable certificate. 

Pate! et al. teach certificate configuration policy (Patel et al. col. 5 lines 38- 
46). 

It would have been obvious to one of ordinary skill in the art at the time of 
applicant's invention to include a designated time expiration based on a 
renewable certificate into security polices for the system BIOS instructions as 
taught by Patel et al. One of ordinary skill in the art would have been 
motivated to perform such a modification in order to increase the level of 
security (Patel et al. col. 2 lines 4-12). 

Conclusion 

Applicant's amendment necessitated the new ground(s) of rejection 
presented in this Office action. Accordingly, THIS ACTION IS MADE FINAL. 
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See MPEP § 706.07(a). Applicant is reminded of the extension of time policy as 
set forth in 37 CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire 
THREE MONTHS from the mailing date of this action. In the event a first reply is 
filed within TWO MONTHS of the mailing date of this final action and the advisory 
action is not mailed until after the end of the THREE-MONTH shortened statutory 
period, then the shortened statutory period will expire on the date the advisory 
action is mailed, and any extension fee pursuant to 37 CFR 1 .136(a) will be 
calculated from the mailing date of the advisory action. In no event, however, will 
the statutory. 

Any inquiry concerning this communication or earlier communications from 
the examiner should be directed to Peter Poltorak whose telephone number is 
(571 )272-3840. The examiner can normally be reached Monday through 
Thursday from 9:00 a.m. to 4:00 p.m. and alternate Fridays from 9:00 a.m. to 
3:30 p.m. 

If attempts to reach the examiner by telephone are unsuccessful, the 
examiner's supervisor, Gregory Morse can be reached on (571) 272-3838. The 
fax phone number for the organization where this application or proceeding is 
assigned is 703-872-9306. 
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